[issue21109] tarfile: Traversal attack vulnerability
STINNER Victor
report at bugs.python.org
Mon Mar 31 11:03:37 CEST 2014
STINNER Victor added the comment:
> It's a known and well-documented behavior of the tar module
Would it possible to disable this behaviour by default, and only enable ti explicitly? The tar command line program has for example the -P / --absolute-paths option.
----------
nosy: +haypo
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue21109>
_______________________________________
More information about the Python-bugs-list
mailing list